metasploit-framework/modules/auxiliary/vsploit/pii/email_pii.rb

49 lines
1.2 KiB
Ruby
Raw Normal View History

##
# This module requires Metasploit: http//metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##
require 'msf/core'
class Metasploit3 < Msf::Auxiliary
2013-08-30 21:28:54 +00:00
#
# This module sends pii via an attacker smtp machine
#
include Msf::Exploit::Remote::SMTPDeliver
include Msf::Auxiliary::PII
def initialize(info = {})
super(update_info(info,
'Name' => 'VSploit Email PII',
'Description' => %q{
This auxiliary reads from a file and sends data which
should be flagged via an internal or external SMTP server.
},
'License' => MSF_LICENSE,
'Author' => ['willis']
))
register_options(
[
OptString.new('RHOST', [true, "SMTP server address",'127.0.0.1']),
OptString.new('RPORT', [true, "SMTP server port",'25'])
], self.class)
end
def run
msg = Rex::MIME::Message.new
msg.mime_defaults
msg.subject = datastore['SUBJECT']
msg.to = datastore['MAILTO']
msg.from = datastore['MAILFROM']
data = create_pii
msg.add_part(data, "text/plain")
msg.add_part_attachment(data, rand_text_english(10))
resp = send_message(msg.to_s)
end
end